5
CVE-2011-3011
- EPSS 71.63%
- Veröffentlicht 15.08.2011 19:55:04
- Zuletzt bearbeitet 16.06.2026 23:32:25
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
BaseServiceImpl.class in CA ARCserve D2D r15 does not properly handle sessions, which allows remote attackers to obtain credentials, and consequently execute arbitrary commands, via unspecified vectors.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Ca ≫ Arcserve D2d Versionr15
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 71.63% | 0.993 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:P/I:N/A:N
|
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
http://securityreason.com/securityalert/8338
http://www.securityfocus.com/archive/1/519234/100/0/threaded
http://www.securityfocus.com/bid/48897
https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=%7B7D3ACC0F-6C01-4BE2-B5C0-C430CEB45BE6%7D